Cisco Systems SRW248G4PK9NA User Manual

Defining MAC-based ACLs

Cisco Small Business 300 Series Managed Switch Administration Guide 

398

 

To create ACLs and associate them with an interface, perform the following:

1. Create one or more of the following types of ACLs:

a. MAC-based ACL by using the MAC Based ACL page and the MAC Based 

ACE page

b. IP-based ACL by using the IPv4 Based ACL page and the IPv4 Based ACE 

page

c. IPv6-based ACL by using the IPv6 Based ACL page and the IPv6 Based ACE 

page

2. Associate the ACL with interfaces by using the ACL Binding page.

An ACL can only be modified if it is not in use. The following describes the process 
of unbinding an ACL in order to modify it:

1. If the ACL does not belong to a QoS Advanced Mode class map, but it has been 

associated with an interface, unbind it from the interface using the ACL Binding 
page. 

2. If the ACL is part of the class map and not bound to an interface, then it can be 

modified.

3. If the ACL is part of a class map contained in a policy bound to an interface, you 

must perform the chain of unbinding as follows:

•

Unbind the policy containing the class map from the interface by using 
Policy Binding.

•

Delete the class map containing the ACL from the policy using the 
Configuring a Policy (Edit).

•

Delete the class map containing the ACL, by using Defining Class Mapping. 

Only then can the ACL be modified, as described in this section.

MAC-based ACLs are used to filter traffic based on Layer 2 fields. MAC-based 
ACLs check all frames for a match.